Approved changes feed: RSS · Atom

cpe:2.3:a:stormshield:stormshield_network_security:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorStormshield (66850321-be73-5e7a-822e-90c1836fd557)
ProductStormshield Network Security (d8c484f1-fca7-56fb-a7c2-565a0131dc06)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2026-8474 vulnerable 2026-06-08 08:08:58.385992 Possible to run a Cross Site Scripting request on the login API available on Stormshield SNS appliances.
MEDIUM (5.3)
A vulnerability was discovered on Stormshield Network Security  * 4.3.0 to 4.3.41,  * 4.8.0 to 4.8.15,  * 5.0.0 to 5.0.5 It is possible to execute a reflected XSS attack on the login API available on Stormshield SNS appliance by executing a script on the victim's machine. The risks include the theft of cookies or other sensitive data, as well as the modification of page behavior, for example, by redirecting the victim to malicious websites.
Published: 2026-06-01T07:47:54.875Z
Updated: 2026-06-01T13:05:45.399Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-48707 vulnerable 2026-06-08 07:29:11.150508 Details available
An issue was discovered in Stormshield Network Security (SNS) before 5.0.1. TPM authentication information could, in some HA use cases, be shared among administrators, which can cause secret sharing.
Published: 2025-09-25T00:00:00.000Z
Updated: 2025-09-26T20:05:50.435Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-37386 vulnerable 2026-06-08 06:39:47.377458 Details available
An issue was discovered in Stormshield Network Security (SNS) 4.0.0 through 4.3.25, 4.4.0 through 4.7.5, and 4.8.0. Certain manipulations allow restarting in single-user mode despite the activation of secure boot. The following versions fix this: 4.3.27, 4.7.6, and 4.8.2.
Published: 2024-07-15T00:00:00.000Z
Updated: 2024-08-02T03:50:56.059Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-47093 vulnerable 2026-06-08 06:14:23.918889 Details available
An issue was discovered in Stormshield Network Security (SNS) 4.0.0 through 4.3.21, 4.4.0 through 4.6.8, and 4.7.0. Sending a crafted ICMP packet may lead to a crash of the ASQ engine.
Published: 2023-12-20T00:00:00.000Z
Updated: 2024-08-02T21:01:22.657Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-47091 vulnerable 2026-06-08 06:14:23.918229 Details available
An issue was discovered in Stormshield Network Security (SNS) SNS 4.3.13 through 4.3.22 before 4.3.23, SNS 4.6.0 through 4.6.9 before 4.6.10, and SNS 4.7.0 through 4.7.1 before 4.7.2. An attacker can overflow the cookie threshold, making an IPsec connection impossible.
Published: 2023-12-25T00:00:00.000Z
Updated: 2025-04-23T16:12:37.640Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-41166 vulnerable 2026-06-08 06:11:05.463318 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-41165 vulnerable 2026-06-08 06:11:05.462856 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-34198 vulnerable 2026-06-08 06:06:24.874355 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-28616 vulnerable 2026-06-08 06:01:14.588994 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-26095 vulnerable 2026-06-08 05:57:38.598125 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-20052 vulnerable 2026-06-08 05:52:38.500744 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-20032 vulnerable 2026-06-08 05:52:38.201193 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-0286 vulnerable 2026-06-08 05:52:04.689308 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-4450 vulnerable 2026-06-08 05:51:59.506476 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-4304 vulnerable 2026-06-08 05:51:37.167662 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-40617 vulnerable 2026-06-08 05:48:27.722606 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-37434 vulnerable 2026-06-08 05:47:12.887658 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-30279 vulnerable 2026-06-08 05:43:37.826912 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-27812 vulnerable 2026-06-08 05:42:43.359652 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-23989 vulnerable 2026-06-08 05:40:59.469259 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-3398 vulnerable 2026-06-08 05:33:51.258637 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-3384 vulnerable 2026-06-08 05:33:51.241403 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-37613 vulnerable 2026-06-08 05:32:54.475362 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-31814 vulnerable 2026-06-08 05:31:53.964113 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-31617 vulnerable 2026-06-08 05:31:53.778971 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-28962 vulnerable 2026-06-08 05:31:25.290083 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-28665 vulnerable 2026-06-08 05:31:24.734260 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-28127 vulnerable 2026-06-08 05:31:22.975341 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-28096 vulnerable 2026-06-08 05:31:22.934439 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-27506 vulnerable 2026-06-08 05:31:21.726173 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-8430 vulnerable 2026-06-08 05:27:16.520408 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-7466 vulnerable 2026-06-08 05:27:13.133210 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-7465 vulnerable 2026-06-08 05:27:13.131177 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-11711 vulnerable 2026-06-08 05:16:47.655493 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-20850 vulnerable 2026-06-08 05:11:28.161536 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2002-20001 vulnerable 2026-06-08 04:47:18.819123 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.